FS#60945 - unbound - no-stub-cache option
Attached to Project:
Arch Linux
Opened by Alexis Vachette (gunhu) - Saturday, 01 December 2018, 12:09 GMT
Last edited by Gaetan Bisson (vesath) - Tuesday, 04 December 2018, 19:01 GMT
Opened by Alexis Vachette (gunhu) - Saturday, 01 December 2018, 12:09 GMT
Last edited by Gaetan Bisson (vesath) - Tuesday, 04 December 2018, 19:01 GMT
|
Details
Description:
When running unbound and a stub zone is declared with stub-no-cache option enabled. It's not working as expected in many attempt the answer is coming directly from unbound itself. Additional info: * 1.8.1-1 * Config file stub-zone: name: "archlinux.org" stub-addr: 213.239.242.238 stub-addr: 213.133.105.6 stub-addr: 193.47.99.3 stub-no-cache: yes And one ACL to be able to query unbound from my own machine, everything else is left by default (config file shipped with the package) Steps to reproduce: $ dig @127.0.0.1 archlinux.org ; <<>> DiG 9.13.4 <<>> @127.0.0.1 archlinux.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 39914 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;archlinux.org. IN A ;; ANSWER SECTION: archlinux.org. 3582 IN A 138.201.81.199 ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: sam. déc. 01 13:04:53 CET 2018 ;; MSG SIZE rcvd: 58 $ dig @127.0.0.1 archlinux.org ; <<>> DiG 9.13.4 <<>> @127.0.0.1 archlinux.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 32966 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;archlinux.org. IN A ;; ANSWER SECTION: archlinux.org. 3563 IN A 138.201.81.199 ;; Query time: 0 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: sam. déc. 01 13:05:12 CET 2018 ;; MSG SIZE rcvd: 58 Fix: After digging on how the package was built, I found that the option which is causing this bad effect is --enable-subnet I disabled it and try again: $ dig @127.0.0.1 archlinux.org ; <<>> DiG 9.13.4 <<>> @127.0.0.1 archlinux.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52962 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;archlinux.org. IN A ;; ANSWER SECTION: archlinux.org. 3600 IN A 138.201.81.199 ;; Query time: 22 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: sam. déc. 01 13:06:38 CET 2018 ;; MSG SIZE rcvd: 58 $ dig @127.0.0.1 archlinux.org ; <<>> DiG 9.13.4 <<>> @127.0.0.1 archlinux.org ; (1 server found) ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58086 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;archlinux.org. IN A ;; ANSWER SECTION: archlinux.org. 3600 IN A 138.201.81.199 ;; Query time: 25 msec ;; SERVER: 127.0.0.1#53(127.0.0.1) ;; WHEN: sam. déc. 01 13:06:39 CET 2018 ;; MSG SIZE rcvd: 58 Is it possible to delete this option ? Regards, |
This task depends upon
Regards,
FS#59482It is quite weird that the subnet option interferes with the stub-no-cache directive. Could you please report this behavior upstream so they can fix it or at least document it? Here is upstream's bug tracker: https://nlnetlabs.nl/bugs-script/buglist.cgi?product=unbound
Cheers.
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=4212
Let me try to compile the new version and I will let you know.
Regards,
Regards,